NIST Draft Practice Guide: Securing Electronic Health Records on Mobile Devices

Data Breach

The National Institute for Standards and Technology issued a “draft” version of a Cybersecurity Practice Guide aimed at doctors, hospitals, and other health care providers.

The 82-page Guide discusses how medical providers access patient data remotely and that “the use of mobile devices to store, access and transmit electronic health care records is outpacing the privacy and security protections on those devices.”  In short, health care is a rich target for hackers.

The Guide provides a set of standards for securely accessing patient data.  As a bit of warning, this Guide is packed with a number of tables and complex figures.

This is certainly more of an IT document than something that a doctor might pick up and read.

You can access the Guide here.

Comments are still being accepted.

Data Breach
Is Your PC Keeping Your Information Private? Take This 10-Question Quiz

A law firm was behind that largest hack in history. How safe is your desktop or laptop PC? For both home and work, this article presents 10 questions in a quiz format about your security and privacy practices. The article also includes the steps how to find the answers — …

Data Breach
U.S. v. Yujing Zhang — April 8, 2019 Filing of Passport, Articles, Receipt, Ad for Mar A Lago event

The unusual case of U.S. v. Yujing Zhang continues in the federal courthouse in West Palm Beach, Florida. On the same day as a well-covered April 8 pre-trial detention hearing, the Defendant filed a number of documents: Two (?) passports and a visa; Receipt; Article (translated): “Trump said he is …

Data Breach
Florida Court Finds Data Breach Not Covered by Travelers / St. Paul CGL Insurance Policy

A federal court in Florida has ruled that the “personal injury” provisions of a Travelers / St. Paul commercial general liability (CGL) policy does not cover a data breach caused by third party hackers.  The court left unresolved the question whether the “property damage” or the costs of compliance with …